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Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the application: 
Listing of Claims: 
1 - 58 (Canceled) 

59. (Currently Amended) A data isolation system for software and data maintenance, back 
up and recovery for a computer wherein dynamic data files are identified and passed into a_at 
l e ast on e hidden partition on a hard disk of the computer, and the passing is bemg-by one or 
more of s e l e ct e d from th e group consisting of: copying and redirection; 

wherein the at l e ast one hidden partition and its content is neither manageable nor 
accessible by a primary operating system of the computer, th e comput e r's op e rating syst e m; 
and the dynamic data files in the hidden partition are not accessible by any software application 
on the compute r and work as active data files for a software application on the computer and 
are continuously updated . 

60. (Currently Amended) The system as claimed in claim 59, wherein the passing g roup 
furth e r includes filtering and access control. 

61. (Previously Presented) The system as claimed in claim 59, wherein automatic back ups 
are made to the dynamic data files in the hidden partition whenever the dynamic data files are 
accessed and modified. 

62. (Previously Presented) The system as claimed in claim 59, wherein the dynamic data 
files include the computer's operating environment so that the computer's operating 
environment can be restored from the dynamic data files in the hidden partition. 
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63. (Currently Amended) The system as claimed in claim 59, wherein the dynamic data files 
in the hidden partition include data up to ajhe-time of a failure of the primary operating 
comput e r's system. 

64. (Currently Amended) The system as claimed in claim 59, wherein compression is used 
for at l e ast on e fil e of the dynamic data files in the hidden partition. 

65. (Currently Amended) The system as claimed in claim 59, wherein encryption is used for 
at l e ast on e of the dynamic data files in the hidden partition. 

66. (Currently Amended) The system as claimed in claim 59, whereim 

prior to copying the dynamic data files into the hidden partition, all software installed on 
the computer, including the a -primary operating system for th e comput e r , is segregated into at 
least one static routine and the dynamic data files by categorizing the software installed on the 
computer; 

the fi ie&r-dynamic data files include including system configuration files fi les^and user 
data files; th e s e gr e gation comprising cat e gorization; 

all data sent from the primary operating system to the dynamic data files and all data sent 
from the dynamic data files to the primary operating system is passed to the dynamic data files in 
the hidden partition; and 

the segregating is by or cat e gorizing of th e data fil e s of is by us e of a data isolation 
t e chniqu e that consists of one or more s e l e ct e d from th e group consisting of: 

(a) automatic selection of a_commonly used software application of the primary 
operating system; 

(b) automatic selection of a_commonly used software application^ 

(c) selection of a_software application by a user of the computer; and 

(d) selection of files or file folders by the user. 
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67. (Currently Amended) The system as claimed in claim 59, whereim 

th e dynamic data fil e s in th e hidd e n partition are continuously updat e d and th e o riginal 
dynamic data files in a main partition of the hard disk are continuously updated; 

an additional I/O driver is bemg-placed between a file system I/O interface and a disk 
driver for access control, intercepting, filtering and re-directing data for the dynamic data files 
in the hidden partition, and the additional I/O driver uses a using an secondary operating system 
of the computer ; 

the access control, intercepting, filtering and re-directing is by th e use ef-regulatory, 
matching, and fulfillment tables; 

the additional I/O driver is part of one or more of s e l e ct e d from th e group consisting of: 
the disk driver, the file system I/O interface, and the primary operating system; 

the secondary operating system is different than t e-the primary operating system; and 

back up and recovery use one of the primary operating system and the secondary 
operating system. 

68. (Currently Amended) The system as claimed in claim 59, wherein on a_system recovery, 
a last back up of a system environment of the computer in the hidden partition, including the 
eepied-dynamic data files in the hidden partition , is recovered, r e cov e r e d; the dynamic data files 
in the hidden partition include including all user data in the computer u p to an instant before the 
system recovery is proc e ss was invoked, and the system environment includes including the 
primary operating system and the software a pplication . 

69. (Currently Amended) The system as claimed in claim 59, wherein upon new software 
being installed in the computer, the installation is delayed until a back up of the computer's 
operating e xisting system environment to the dynamic data files in the hidden partition is 
completed and, after completion of the back up, the installation is resumed r e sum e d; and, if 
system instability or failure is encountered after the installation or running of the new software, 
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then the computer syst e m restores the computer's p r e vious operating environment from the 
back up. 

70. (Currently Amended) The system as claimed in claim 59, wherein upon a new device 
driver being installed in the computer, the installation is delayed until a back up of the 
computer's operating existing syst e m environment to the dynamic data files in the hidden 
partition is completed and, after completion of the back up, the installation is resumed and, if 
system instability or failure is encountered after the installation or running of the new device 
driver, then the computer syst e m restores the computer's p r e vious operating environment from 
the back up. 

71. (Currently Amended) The system as claimed in claim 59, wherein the software 
application and the A dynamic data files belonging to the software application are copied to the 
hidden partition as independent modules. 

72. (Currently Amended) The system as claimed in claim 59, wherein the dynamic data files 
in the hidden partition include system configuration files and all user data files in the 
compute r work as activ e data files for a softwar e application and ar e continuously updated . 

73. (Currently Amended) The system as claimed in claim 66, whereim 

for (a), (b) and (c), the a il-dynamic data files belonging to the software application are 
wiH-be-automatically segregated and stored to the hidden partition; and 

for (d), the selected files or aH-the dynamic data files belonging to the selected file folders 
are witi-be-automatically segregated and stored to the hidden partition. 

74. (Previously Presented) The system as claimed in claim 59, wherein the dynamic data 
files stored in the hidden partition are protected. 
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75. (Currently Amended) The system as claimed in claim 59, wherein th e dynamic data fil e s 
stor e d in th e hidd e n partition ar e us e d as activ e working files and ar e continuously updat e d; a 



in the hidden partition using a first-in-first-out sequence, s e qu e nc e ; and upon accessing and 
modifying the dynamic data files in the hidden partition an working data file , the plurality of 
back-ups are updated according to a pre-assigned back-up schedule. 

76. (Currently Amended) A system for managing access to a host computer by a remote 
computer^ wherein: 

access by the remote computer is in accordance with a software security access policy in 
the host computer; 

wh e r e in dynamic data files are identified and passed into a hidden partition on a hard disk 
of the host computer, and the passing is b e ing by one or more of sel e ct e d from the group 



the software security access policy has a file access right and control mechanism that 
controls access to the host computer by the remote computer: and 

the file access right and control mechanism selectively provides protection to a selected 
software application and its respective dynamic data files and is controlled by the host computer 
and includes: 

(a) selection of software application/programs; 

(b) selection of dynamic data files of the software application; 

(c) selection of configuration files: 

(d) selection of a data file or folder; and 

(e) selection of a type of an operation to be performed by the remote computer . 

77. (Currently amended) The system as claimed in claim 76, wherein the hidden partition 
and its content is neither manageable nor accessible by an operating system of the remote 
computer, and the dynamic data files in the hidden partition are not accessible by any software 



-back-up copi es of the eaeh-dynamic data files in the hidden partition are bemg-made 




copying, redirection, filtering, and access control; 
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application on the remote computer and work as active data files for the software application on 
the remote computer and are continuously updated th e softwar e s e curity acc e ss policy has a fil e 
acc e ss right and control m e chanism; and th e fil e access right and control m e chanism is used to 
s e l e ctively provide prot e ction to s e l e ct e d softwar e application and th e ir r e sp e ctiv e dynamic data 
fil e s; th e file acc e ss right and control m e chanism of th e host computer by th e r e mot e comput e r 
b e ing controll e d by th e host comput e r and includ e : 

(a) sel e ction of software application/programs; 

(b) s e lection of dynamic data fil e s of th e softwar e application; 

(e) s e l e ction of configuration fil e s; 

(d) s e l e ction of data fil e or fold e r; and 

(e) s e l e ction of th e typo of th e op e ration to b e p e rformed by the remot e comput e r . 

78. (Currently Amended) The system as claimed in claim 7677, wherein the selected data 
file, or data files belonging to the selected folder, are automatically given the access right while 
any other data files are oth e rs will bo denied the access right - the file access right and control 
mechanism is_ pf th e host computer b e ing pre-determined by a category of the remote hest 
computer, and-different remote computers are given different access rights for different usage, 
and usage; all files including program, configuration and user data files on the remote computer 
are_bemg-automatically given the access right while all other files e thefs-are denied the access 
right . 

79. (Currently Amended) The system as claimed in claim 78, wherein: 

the host computer includes a primary operating system, a secondary operating system, a 
file system I/O interface, a disk driver and h as-an additional I/O driver placed between the a-file 
system I/O interface and the a -disk driver for access control, intercepting, filtering and re- 
directing data for the dynamic data files;fi lefr 

the additional I/O driver uses the using an secondary operating system; 
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the access control, intercepting, filtering and re-directing b e ing by th e use ef-regulatory, 
matching, and fulfillment tables; and 

the additional I/O driver is part of one or more of s e l e cted from the group consisting of: 
the disk driver, the file system I/O interface, and the primary operating system. 

80. (Currently Amended) The system as claimed in claim 79, wherein the secondary 
operating system is different than t e-the primary operating system, syst e m; back up and 
recovery use one of the primary operating system and the secondary operating system, s ystems 
and the remote access is through the secondary operating system. 

81. (Currently Amended) The system as claimed in claim 76, wherein the selected software 
application and its thek^respective dynamic data files are identified and are located in at least 
one partition of athe-primary operating system of the host computer. 

82. (Currently Amended) The system as claimed in claim 76, wherein the host computer 
uses usiftg-diagnostic utilities to allow remote technical support by the remote computer. 

83. (Currently Amended) A system for providing an external back up for a _at least one 
computer to a _at least on e hidden partition of a centralized back up server, wherein; 

dynamic data files of the at l e ast one computer are identified and passed into the at l e ast 
ene-hidden partition on a hard disk of the centralized back up server, and the passing is by 
b e ing by one or more of s e l e ct e d from the group consisting of: copying and redirection; 

the hidden partition of the centralized back up server is accessed by the computer using at 
least one of a LAN, WAN, VPN, Intranet and Internet: 

critical software applications and their dynamic data files are stored and protected in the 
hidden partition of the centralized back up server using encryption and are only able to be 
accessed by authorized users; 
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the computer has an additional I/O driver placed between a file system I/O interface and a 
disk driver for access control intercepting, filtering and re-directing data for the dynamic data 
files; 

the additional I/O driver uses a secondary operating system of the computer; 
the access control intercepting, filtering and re-directing use regulatory, matching, and 
fulfillment tables; and 

the additional I/O driver is part of one or more of the disk driver, the file system I/O 
interface, and a primary operating system of the computer . 

84. (Currently Amended) The system as claimed in claim 83, wherein the hidden partition 
and its content is neither manageable nor accessible by the primary operating system, and the 
dynamic data files in the hidden partition are not accessible by any software application on the 
computer and work as active data files for a software application on the computer and are 
continuously updated at l e ast on e hidd e n partition of th e centralized back up s e rv e r is access e d 
using at l e ast on e s e l e cted from th e group consisting of a: LAN, WAN, VPN, Intran e t and 
Int e rn e t; critical applications and th e ir dynamic data fil e s b e ing stored and prot e ct e d in th e at 
l e ast on e hidden partition of the centralized back up server by using encryption and ar e only 
abl e to b e accessed by authoriz e d users . 

85. (Currently Amended) The system as claimed in claim 84, wherein the dynamic data files 
include system configuration files and all user data files in the compute r at l e ast on e comput e r 
has an additional I/O driv e r placed b e twe e n a fil e syst e m I/O int e rfac e and a disk driv e r for 
acc e ss control, interc e pting, filt e ring and r e dir e cting data for th e dynamic data fil e s, th e 
additional I/O driver using a s e condary operating syst e m; th e acc e ss control, int e rc e pting, 
filt e ring and r e dir e cting b e ing by th e us e of r e gulatory, matching, and fulfillm e nt tabl e s; the 
additional I/O driv e r b e ing part of on e or mor e s e lected from the group consisting of: th e disk 
driv e r, th e fil e syst e m I/O int e rfac e , and th e primary op e rating syst e m . 
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86. (Currently Amended) The system as claimed in 83, wherein the secondary operating 
system is different than the t e-a-primary operating system , and of th e at l e ast on e comput e r; 
back up and recovery for the computer b e ing by use one of the primary operating system and 
the secondary operating system. 

87. (Currently Amended) The system as claimed in claim 83, ^ -wherein communication 
between the computer and w kh-the centralized back up server is through the secondary 
operating system. 

88. (Currently Amended) The system as claimed in claim 59 further comprising a system for 
managing access to a host computer by the computer as the computer serves as a remote 
computer wherein access by the remote computer is in accordance with a software security 
access policy in the host computer, the comput e r; wher e in dynamic data files are identified and 
passed into the a-hidden partition on a hard disk of the host computer, and the passing includes 
b e ing by one or more o£ s e l e ct e d from th e group consi s ting of: copying, redirection, filtering, 
and access control. 

89. (Currently Amended) The system as claimed in claim 59 further comprising a system for 
providing an external back up for the_ at l e ast one computer to the at l e ast on e hidden partition 
on a hard disk of a centralized back up serve r, wh e r e in dynamic data fil e s of th e at l e ast one 
comput e r ar e id e ntified and pass e d into th e at l e ast on e hidd e n partition on a hard disk of th e 
centraliz e d back up s e rver, th e passing b e ing by on e or mor e s e lected from the group consisting 
of: copying and r e dir e ction . 

90. (Currently Amended) The system as claimed in claim 89, wherein the hidden partition of 
the centralized back up server is accessed by the computer using at least one of a LAN, WAN, 
VPN, Intranet and Internet for manag e m e nt of acc e ss to a host comput e r by a r e mot e comput e r 
as claimed in claim 76 furth e r comprising 
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a s yst e m for providing an e xt e rnal back up for at l e ast one comput e r to at l e ast one 

hidden partition of a centralized back up serv e r, wher e in dynamic data files of th e at l e ast on e 
comput e r ar e id e ntifi e d and pass e d into the at least on e hidden partition on a hard disk of the 
c e ntraliz e d back up s e rv e r, th e passing b e ing by on e or mor e s e lect e d from th e group consisting 
of: copying and redir e ction . 

91. (New) A data isolation system for software and data maintenance, back up and recovery 
for a computer wherein dynamic data files are identified and passed into a hidden partition on a 
hard disk of the computer, and the passing is by one or more of copying and redirection, 
wherein: 

the hidden partition and its content is neither manageable nor accessible by a primary 
operating system of the computer; 

the dynamic data files in the hidden partition are not accessible by any software 
application on the computer and are continuously updated; 

original dynamic data files in a main partition of the hard disk are continuously updated; 

an additional I/O driver is placed between a file system I/O interface and a disk driver for 
access control, intercepting, filtering and re-directing data for the dynamic data files in the 
hidden partition, and the additional I/O driver uses a secondary operating system of the 
computer; 

the access control, intercepting, filtering and re-directing use regulatory, matching, and 
fulfillment tables; 

the additional I/O driver is part of one or more of the disk driver, the file system I/O 

interface, and the primary operating system; 

the secondary operating system is different than the primary operating system; and 

back up and recovery use one of the primary operating system and the secondary 

operating system. 
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92. (New) The system as claimed in claim 91, wherein the primary operating system 
interacts with a user of the computer, and the secondary operating system is transparent to the 
user. 

93. (New) The system as claimed in claim 92, wherein the back up and recovery use the 
secondary operating system. 

94. (New) A data isolation system for software and data maintenance, back up and recovery 
for a computer wherein dynamic data files are identified and passed into a hidden partition on a 
hard disk of the computer, and the passing is by one or more of copying and redirection, 
wherein: 

the hidden partition and its content is neither manageable nor accessible by a primary 
operating system of the computer; 

the dynamic data files in the hidden partition are not accessible by any software 
application on the computer; and 

on a system recovery, a last back up of a system environment of the computer in the 
hidden partition, including the dynamic data files in the hidden partition, is recovered, the 
dynamic data files in the hidden partition include all user data in the computer up to an instant 
before the system recovery is invoked, and the system environment includes the primary 
operating system and the software application. 

95. (New) A data isolation system for software and data maintenance, back up and recovery 
for a computer wherein dynamic data files are identified and passed into a hidden partition on a 
hard disk of the computer, and the passing is by one or more of copying and redirection, 
wherein: 

the hidden partition and its content is neither manageable nor accessible by a primary 
operating system of the computer; 
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the dynamic data files in the hidden partition are not accessible by any software 
application on the computer and work as active data files and are continuously updated; and 

back-ups of the dynamic data files in the hidden partition are made in the hidden partition 
using a first-in-first-out sequence, and upon accessing and modifying the dynamic data files in 
the hidden partition, the back-ups are updated according to a pre-assigned back-up schedule. 

96. (New) A computer, comprising: 

a primary operating system that interacts with a user of the computer; 

a secondary operating system that is different than the primary operating system; 

a hard disk that includes a hidden partition; and 

a data isolation system that identifies dynamic data files and passes the dynamic data files 
to the hidden partition, wherein the dynamic data files include system configuration files and 
user data files, the passing includes one or more of copying and redirection, the hidden partition 
and its content cannot be managed and cannot be accessed by the primary operating system, the 
user and any software application on the computer, and the hidden partition and its content is 
managed and accessed by the secondary operating system for software and data maintenance, 
back up and recovery for the computer. 

97. (New) The system as claimed in claim 96, wherein the primary operating system is a 
Windows operating system and the secondary operating system is a Linux operating system. 

98. (New) The system as claimed in claim 96, wherein the secondary operating system is 
transparent to the user. 

99. (New) The system as claimed in claim 96, wherein the secondary operating system is 
placed between the primary operating system and the dynamic data files in the hidden partition. 
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100. (New) The system as claimed in claim 99, wherein the secondary operating system 
passes all user data in the computer from the primary operating system to the dynamic data files 
in the hidden partition. 

101. (New) The system as claimed in claim 99, wherein the primary operating system 
includes a file system I/O interface, a disk driver and an additional I/O driver, and the additional 
I/O driver is placed between the file system I/O interface and the disk driver and transfers data 
to and from the dynamic data files in the hidden partition using the secondary operating system. 

102. (New) The system as claimed in claim 101, wherein the additional I/O driver provides 
access control, intercepting, filtering and re-directing of the data for the dynamic data files in 
the hidden partition using the secondary operating system. 

103. (New) The system as claimed in claim 102, wherein the additional I/O driver provides 
the access control, intercepting, filtering and re-directing of the data for the dynamic data files 
in the hidden partition using regulatory, matching, and fulfillment tables. 

104. (New) The system as claimed in claim 96, wherein the dynamic data files in the hidden 
partition work as active data files for a software application on the computer and are 
continuously updated whenever the dynamic data files are accessed and modified. 

105. (New) The system as claimed in claim 96, wherein the dynamic data files in the hidden 
partition are automatically backed up in a circular first-in-first-out sequence in the hidden 
partition whenever the dynamic data files are accessed and modified. 

106. (New) A computer, comprising: 

a primary operating system that interacts with a user of the computer; 
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a secondary operating system that is different than the primary operating system and is 
transparent to the user; 

a hard disk that includes a hidden partition; and 

a data isolation system that identifies dynamic data files and passes the dynamic data files 
to the hidden partition, wherein the dynamic data files include the computer's operating 
environment and user data files, the passing includes one or more of copying and redirection, 
the hidden partition and its content cannot be managed and cannot be accessed by the primary 
operating system, the user and any software application on the computer, the hidden partition 
and its content is managed and accessed by the secondary operating system for software and 
data maintenance, back up and recovery for the computer, and the secondary operating system 
is placed between the primary operating system and the dynamic data files in the hidden 
partition and passes all user data in the computer from the primary operating system to the 
dynamic data files in the hidden partition. 

107. (New) The system as claimed in claim 106, wherein the primary operating system is a 
Windows operating system and the secondary operating system is a Linux operating system. 

108. (New) The system as claimed in claim 106, wherein the primary operating system 
includes a file system I/O interface, a disk driver and an additional I/O driver, the additional I/O 
driver is placed between the file system I/O interface and the disk driver and transfers data to 
and from the dynamic data files in the hidden partition using the secondary operating system, 
and the additional I/O driver provides access control, intercepting, filtering and re-directing of 
the data for the dynamic data files in the hidden partition using the secondary operating system 
and regulatory, matching, and fulfillment tables. 

109. (New) The system as claimed in claim 106, wherein the dynamic data files in the 
hidden partition work as active data files for a software application on the computer and are 
continuously updated whenever the dynamic data files are accessed and modified. 
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110. (New) The system as claimed in claim 106, wherein the dynamic data files in the 
hidden partition are automatically backed up in a circular first-in-first-out sequence in the 
hidden partition whenever the dynamic data files are accessed and modified. 



Page 17 of 26 



